Search...

Sun Solaris vulnerable to DoS when the Basic Security Module (BSM) is configured to perform auditing of specific classes

2004-06-28T00:00:00

ID VU:901582
Type cert
Reporter CERT
Modified 2004-06-28T00:00:00

Description

Overview

There is a vulnerability in Sun Solaris that could allow local users to cause a denial of service when the Basic Security Module (BSM) is configured to perform auditing of specific audit classes.

Description

Sun Microsystems describes the Basic Security Module (BSM) as a "security auditing subsystem and a device allocation mechanism that provides the required object reuse characteristics for removable or assignable devices." There is a vulnerability in Sun Solaris systems with BSM enabled that could allow local users to cause a system panic.

According to the Sun Security Alert:

Local unprivileged users may be able to panic Solaris systems with Basic Security Module (BSM) enabled causing a Denial of Service (DoS). This issue can only occur on systems where BSM has been configured to audit the Administrative audit class "ad" or the System-Wide Administration audit class "as".

Impact

A local unprivileged user could cause a denial-of-service condition.

Solution

Sun has issued an advisory which addresses this issue. For more information on patches available for your system, please refer to Sun Security Alert: 57497.

Systems Affected

Vendor| Status| Date Notified| Date Updated
---|---|---|---
Sun Microsystems Inc.| | -| 28 Jun 2004
If you are a vendor and your product is affected, let us know.

CVSS Metrics

Group | Score | Vector
---|---|---
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | N/A | N/A

References

<http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57497>
<http://secunia.com/advisories/11930/>
<http://www.securitytracker.com/alerts/2004/Jun/1010572.html>
<http://www.securityfocus.com/bid/10594>

Credit

This vulnerability was reported by Sun Microsystems Inc.

This document was written by Damon Morda.

Other Information

CVE IDs: Unknown
Date Public: 22 Jun 2004
Date First Published: 28 Jun 2004
Date Last Updated: 28 Jun 2004
Severity Metric: 3.46
Document Revision: 7

JSON Vulners Source

Initial Source

{"viewCount": 0, "id": "VU:901582", "hash": "87a4b4cc0ecbd3544d7ec0a41ca1827d47e39df21ed40958776adcc40e8b7fc4", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.kb.cert.org/vuls/id/901582", "history": [], "edition": 1, "references": ["http://secunia.com/advisories/11930/", "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57497", "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57497", "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57497", "http://www.securityfocus.com/bid/10594", "http://www.securitytracker.com/alerts/2004/Jun/1010572.html"], "cvelist": [], "description": "### Overview\n\nThere is a vulnerability in Sun Solaris that could allow local users to cause a denial of service when the Basic Security Module (BSM) is configured to perform auditing of specific audit classes.\n\n### Description\n\nSun Microsystems describes the Basic Security Module (BSM) as a \"security auditing subsystem and a device allocation mechanism that provides the required object reuse characteristics for removable or assignable devices.\" There is a vulnerability in Sun Solaris systems with BSM enabled that could allow local users to cause a system panic. \n\nAccording to the [Sun Security Alert](<http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57497>): \n\n\n_Local unprivileged users may be able to panic __Solaris systems__ with Basic Security Module (BSM) enabled causing a Denial of Service (DoS). This issue can only occur on systems where BSM has been configured to audit the Administrative audit class \"ad\" or the System-Wide Administration audit class \"as\"._ \n \n--- \n \n### Impact\n\nA local unprivileged user could cause a denial-of-service condition. \n \n--- \n \n### Solution\n\nSun has issued an advisory which addresses this issue. For more information on patches available for your system, please refer to [Sun Security Alert: 57497](<http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57497>). \n \n--- \n \n### Systems Affected \n\nVendor| Status| Date Notified| Date Updated \n---|---|---|--- \nSun Microsystems Inc.| | -| 28 Jun 2004 \nIf you are a vendor and your product is affected, [let us know](<mailto:cert@cert.org?Subject=VU%23901582 Vendor Status Inquiry>).\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | N/A | N/A \n \n### References\n\n * <http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57497>\n * <http://secunia.com/advisories/11930/>\n * <http://www.securitytracker.com/alerts/2004/Jun/1010572.html>\n * <http://www.securityfocus.com/bid/10594>\n\n### Credit\n\nThis vulnerability was reported by Sun Microsystems Inc.\n\nThis document was written by Damon Morda.\n\n### Other Information\n\n * CVE IDs: Unknown\n * Date Public: 22 Jun 2004\n * Date First Published: 28 Jun 2004\n * Date Last Updated: 28 Jun 2004\n * Severity Metric: 3.46\n * Document Revision: 7\n\n", "modified": "2004-06-28T00:00:00", "lastseen": "2016-02-03T09:12:39", "bulletinFamily": "info", "title": "Sun Solaris vulnerable to DoS when the Basic Security Module (BSM) is configured to perform auditing of specific classes", "objectVersion": "1.2", "reporter": "CERT", "type": "cert", "published": "2004-06-28T00:00:00", "enchantments": {"vulnersScore": 2.7}}